Wilson Sonsini Goodrich & Rosati

Wilson Sonsini Goodrich & Rosati's legacy closely traces the birth and evolution of Silicon Valley.

For nearly six decades, Wilson Sonsini has represented the technology pioneers associated with virtually every milestone innovation.

Today, the firm is synonymous with ushering promising, innovative companies through their business life cycle.

And as our clients have grown, so has our firm. Wilson Sonsini now represents many of the largest companies in the world—and thousands of the smallest ones, too.

Wilson Sonsini Goodrich & Rosati Blogs

The WSGR Data Advisor

Blog Authors

AB C DEF G HIJ K L MNO PQR S TUVWXYZ

Mariam Abdel-Malek

Jonathan Adams

Latest from Wilson Sonsini Goodrich & Rosati

The WSGR Data Advisor

Data Brokers Must Register with California Attorney General by January 31

By Lydia Parnes, Edward Holman & Megan Kayo

January 7, 2020

Given Broad Definitions, the Law Could Apply to Businesses That Do Not Consider Themselves Data Brokers While amending the California Consumer Privacy Act of 2018 (CCPA) last term, the California legislature also passed a CCPA-related privacy bill that applies to “data brokers.” Assembly Bill 1202 (AB 1202) requires businesses that qualify as data brokers to register, pay a fee, and provide certain information to the California attorney general. Because AB 1202 relies on the CCPA’s…

The WSGR Data Advisor

UK’s Age Appropriate Design Code Pending

By Josephine Jay, Lore Leitner & Laura Brodahl

November 1, 2019

The Information Commissioner’s Office (ICO) has confirmed that by November 23, 2019, it will present its Age Appropriate Design Code of Practice to the UK Parliament for approval. Unless Parliament objects, this mandatory code will be issued and in force (albeit with a transition period) as early as January 2020. The final code has been hotly anticipated since the call for input on the issue of age appropriate design in June 2018. Since then, the…

The WSGR Data Advisor

Proposed CCPA Regulations: Clarity or Confusion?

By Edward Holman & Mariam Abdel-Malek

October 22, 2019

On October 10, 2019, the California Attorney General’s office issued the proposed text of its California Consumer Privacy Act (CCPA) regulations (the Regulations). The Regulations propose detailed rules regarding required notices for consumers, business practices for handling consumer requests, verification of requests, special rules regarding minors, and non-discrimination. Accompanying the Regulations are the Attorney General’s Initial Statement of Reasons, which provide the justifications for each requirement.…

The WSGR Data Advisor

ECJ: Cookies Require Active Opt-In Consent

By Bastiaan Suurmond, Josephine Jay & Christopher Foo

October 9, 2019

On October 1, 2019, the European Court of Justice (ECJ) delivered its judgment in Planet49 (C-673/17), holding that (1) website operators must obtain active opt-in consent to store or access cookies, (2) users must be informed about the retention period and the third party receiving the data, and (3) consent must be obtained regardless of whether the cookies contain personal data. This ruling will likely prompt regulators to scrutinize cookie policies and consent…

The WSGR Data Advisor

Greece Publishes Draft Legislation for Implementing GDPR

By Nikolaos Theodorakis

August 20, 2019

On August 12, 2019, the Greek Ministry of Justice published the long-awaited, draft legislation for implementing the General Data Protection Regulation (GDPR). Greece and Slovenia are the only two European Union (EU) countries that have not yet implemented the GDPR. As an EU regulation, the GDPR has legally taken effect in every EU country, including Greece. In fact, the Greek Supervisory Authority recently imposed a 150,000EUR fine on a company for GDPR violations. However,…

The WSGR Data Advisor

Website Operator Jointly Liable for Data Collection and Transmission Through Facebook “Like” Button

By Cédric Burton, Jan Dhont, Rossana Fol, Christopher Olsen & Bastiaan Suurmond

July 30, 2019

On July 29, 2019, the European Court of Justice (ECJ) issued its decision in FashionID (Case C-40/17), determining that website operators are jointly liable with plugin providers for data collection and transmission through social media buttons and other embedded plugins. Although the ECJ found the operator and plugin provider to be jointly liable, the court placed the burden on the website operator to provide notice and, where necessary, obtain consent for the joint activity. Further,…

The WSGR Data Advisor

The ICO Issues Its Cookies Guidance: Clarified Stance and Enforcement Priorities

By Josephine Jay, Lore Leitner & Jan Dhont

July 29, 2019

On July 5, 2019, the UK’s Data Protection Authority (ICO) issued its “Guidance on the use of cookies and similar technologies” (the Guidance) along with a brief explanatory blog post. At the same time the ICO updated its own website cookie notice and consent, leading by example. The ICO’s blog post makes clear that cookie compliance will increasingly be a regulatory priority, and that companies should start working towards compliance now.…

The WSGR Data Advisor

FTC Seeks Public Comment on Children’s Online Privacy Protection Rule

By Libby Weingarten

July 22, 2019

In a notice issued July 17, 2019, the Federal Trade Commission (FTC) is seeking public comment on a wide range of issues related to the Children’s Online Privacy Protection Act and implementing Rule (COPPA). The FTC has also announced a public workshop to review the COPPA Rule, to be held on October 7, 2019.…

The WSGR Data Advisor

The CNIL Sharpens Requirements on Deployment of Tracking Technologies

By Rossana Fol & Jan Dhont

July 19, 2019

On July 18, 2019, the French Data Protection Authority (CNIL) issued new guidance on the use of cookies and similar tracking technologies (collectively referred to as “cookies” below).[1] The guidance clarifies the instances in which companies must obtain consent for the use of cookies and specifies the requirements for obtaining consent.…

The WSGR Data Advisor

Looking Back: The ICO’s Busy Year and Its Record-Breaking Fines

By Josephine Jay & Lore Leitner

July 18, 2019

The UK Supervisory Authority (the ICO) has had a headline-busting month. On July 9, 2019, the ICO announced its intention to fine Marriott International more than £99 million under the GDPR (General Data Protection Regulation) for a data breach which took place last year,[1] a figure that would have been record breaking had the ICO not announced its intention to fine British Airways £183 million 24 hours earlier.[2] While it is clear that…

Wilson Sonsini Goodrich & Rosati

Wilson Sonsini Goodrich & Rosati Blogs

Blog Authors

Data Brokers Must Register with California Attorney General by January 31

UK’s Age Appropriate Design Code Pending

Proposed CCPA Regulations: Clarity or Confusion?

ECJ: Cookies Require Active Opt-In Consent

Greece Publishes Draft Legislation for Implementing GDPR

Website Operator Jointly Liable for Data Collection and Transmission Through Facebook “Like” Button

The ICO Issues Its Cookies Guidance: Clarified Stance and Enforcement Priorities

FTC Seeks Public Comment on Children’s Online Privacy Protection Rule

The CNIL Sharpens Requirements on Deployment of Tracking Technologies

Looking Back: The ICO’s Busy Year and Its Record-Breaking Fines

Stay Connected

Company

Support

New to the Network